agent-release-swarm

This skill is an orchestration layer for release automation that legitimately requires high privileges (repo write, publish to registries, run builds). The primary supply-chain risk is runtime execution of an unpinned third-party CLI (npx ruv-swarm) inside hooks and workflows — a download-and-execute pattern that can access repository contents and secrets. Combined with broad permissions and automated publishing steps, this creates a medium-to-high security risk unless mitigated (pin versions, vendor audit, restrict tokens, run in least-privilege contexts). I do not find direct evidence of active malicious payloads, obfuscation, or explicit exfiltration endpoints in the provided fragments, but the patterns present (transitive installs, credential exposure potential) warrant treating the skill as suspicious and high-risk for supply-chain compromise.